Subject: | |
From: | |
Reply To: | |
Date: | Tue, 18 Nov 2008 14:36:13 -0600 |
Content-Type: | text/plain |
Parts/Attachments: |
|
|
Synopsis: Important: libxml2 security update
Issue date: 2008-11-17
CVE Names: CVE-2008-4225 CVE-2008-4226
An integer overflow flaw causing a heap-based buffer overflow was found in
the libxml2 XML parser. If an application linked against libxml2 processed
untrusted, malformed XML content, it could cause the application to crash
or, possibly, execute arbitrary code. (CVE-2008-4226)
A denial of service flaw was discovered in the libxml2 XML parser. If an
application linked against libxml2 processed untrusted, malformed XML
content, it could cause the application to enter an infinite loop.
(CVE-2008-4225)
SL 3.0.x
SRPMS:
libxml2-2.5.10-14.src.rpm
i386:
libxml2-2.5.10-14.i386.rpm
libxml2-devel-2.5.10-14.i386.rpm
libxml2-python-2.5.10-14.i386.rpm
x86_64:
libxml2-2.5.10-14.i386.rpm
libxml2-2.5.10-14.x86_64.rpm
libxml2-devel-2.5.10-14.x86_64.rpm
libxml2-python-2.5.10-14.x86_64.rpm
SL 4.x
SRPMS:
libxml2-2.6.16-12.6.src.rpm
i386:
libxml2-2.6.16-12.6.i386.rpm
libxml2-devel-2.6.16-12.6.i386.rpm
libxml2-python-2.6.16-12.6.i386.rpm
x86_64:
libxml2-2.6.16-12.6.i386.rpm
libxml2-2.6.16-12.6.x86_64.rpm
libxml2-devel-2.6.16-12.6.x86_64.rpm
libxml2-python-2.6.16-12.6.x86_64.rpm
SL 5.x
SRPMS:
libxml2-2.6.26-2.1.2.7.src.rpm
i386:
libxml2-2.6.26-2.1.2.7.i386.rpm
libxml2-devel-2.6.26-2.1.2.7.i386.rpm
libxml2-python-2.6.26-2.1.2.7.i386.rpm
x86_64:
libxml2-2.6.26-2.1.2.7.i386.rpm
libxml2-2.6.26-2.1.2.7.x86_64.rpm
libxml2-devel-2.6.26-2.1.2.7.i386.rpm
libxml2-devel-2.6.26-2.1.2.7.x86_64.rpm
libxml2-python-2.6.26-2.1.2.7.x86_64.rpm
-Connie Sieh
-Troy Dawson
|
|
|